Merge branch 'devops/log4j2-vulnerability-patch' into 'master'

Apply vulnerability patch to mitigate CVE-2021-44228 See merge request crafty-controller/crafty-commander!113
2024-08-30 18:23:09 +00:00 · 2021-12-12 15:29:49 +00:00 · 2021-12-12 15:29:49 +00:00 · 44297ffa44
commit 44297ffa44
parent 2dcdc1255b 55bf41f7f6
1 changed files with 3 additions and 0 deletions
--- a/3
+++ b/3
@ -2,6 +2,9 @@ FROM python:alpine

 LABEL maintainer="Dockerfile created by Zedifus <https://gitlab.com/zedifus>"

+# Security Patch for CVE-2021-44228
+ENV LOG4J_FORMAT_MSG_NO_LOOKUPS=true
+
 # Install Packages, Build Dependencies & Garbage Collect & Harden
 #        (Alpine Edge repo is needed because jre16 is new)
 COPY requirements.txt /commander/requirements.txt